Slashdot Mirror

← Back to Stories (view on slashdot.org)

InvisibleNet Presents IIP

Posted by michael on from the op-sets-ban-on-*.invisiblenet.net dept.

An anonymous submitter writes: "A new and ever growing project has launched into the alternative network realm, changing the pace by focusing directly on speech, rather than file sharing. The Invisible Irc Project, a peer distributed secure and anonymous internet relay chat network has popped up at some of the recent conventions this past year. The creator, and project leader, known as 0x90, has been seen at CodeCon 2002 introducing it to the public, at that time in more of a primitive state, and today, almost a year later, the software has noticeably been more usable by the masses. 0x90 just gave a talk at ToorCon 2K2 on designing a robust & secure Peer-2-Peer framework, and their InvisibleNet site just released new software along with a two part interview that was taken in July. A good read that details the depths of their project, including the state it is in now, and the future vision of a privately distributed steganographical crypto-net. I have tried out the software and it is very easy to set up, and it supports the freenixes, OS X, and Win32 machines. You can use any irc client with it seemlessly, and the cryptography is handled transparently within your "IIP" node. It's GPL so peer review is welcome, as it also states this on their site. It appears to have a nice community of users with a range of discussions. So if you have a bit of time on your hands to engage in some chatting online, give this a try. It's alternative, creative, and possibly a standard setting step to securing IRC as we know it."

29 of 176 comments (clear)

  1. Looks very promising by ymgve · · Score: 3, Insightful

    I tried it, and it worked very well right out of the box. I am really looking forward to seeing them develop the InvisibleNet platform further - it might even become a serious competitor to what FreeNet is now.

    1. Re:Looks very promising by Puggles · · Score: 4, Insightful

      It's performing very well out of the box right now, but IIP is about to have its scalability tested, Slashdot style.

      Here's to hoping the whole thing doesn't come tumbling down.

      --

      Pereant, inquit, qui ante nos nostra dixerunt.
      "Confound those who have said our remarks before us."
    2. Re:Looks very promising by Istealmymusic · · Score: 3, Funny
      As soon as I read your comment:
      -
      *** Disconnected
      -
      Doh!
      --
      "The lesson to be learned is not to take the comments on slashdot too literally." --Vinnie Falco, BearShare
  2. horray something to download! by Mage+Powers · · Score: 5, Funny

    I gotta love slashdot, just before I decided to cave in and do homework, theres a post on slashdot involving downloading, irc AND encryption!

  3. All this encryption ... by Xenographic · · Score: 4, Insightful

    ... still won't help if you tell people who you are.

    Your nick + the personal information you give out, even inadvertently, is more than enough to let people figure out who you are. You can build rather complete profiles of most people, even the security concious, from nothing but public information. I should know...

    1. Re:All this encryption ... by Anonymous Coward · · Score: 3, Insightful

      Very true. The very best way to protect your anonymity is to have several 'standard' alternate identities (e.g. *give* them personal information; several different sets thereof & reuse some of them more than once so they can't find the real information for all of the gibberish...)

      It's probable that no one cares who you are, but if they do, well...

    2. Re:All this encryption ... by Henry+V+.009 · · Score: 3, Funny

      Quite true. As sure as my name is George W. Bush, President of the United States, I contantly worry that my 1337 hacking s7!11z will be be uncovered. Luckily I've got this encryption thingymigig on my laptop that protects my identity.

  4. Clever, 0x90, but I'm changing my name to 0x120... by craigeyb · · Score: 4, Funny

    ... that way I'll be "too gross."

    This sig is false.

    --

    Social Contract? I don't remember signing any Social Contract!

  5. DCC and CTCP disabled by MiDS · · Score: 5, Insightful

    Keep in mind that DCC and CTCP are disabled due to anonymity reasons, you can't use the current IIP network for filetransfer.
    But ofcourse you can paste freenet keys and urls.

  6. Don't you know who's really using this?!?!?!? by doublem · · Score: 5, Funny



    Terrorists! All those IRC Crypto people are terrorists!

    All real, patriotic citizens are more than happy to let the government see, read and catalog everything they do.

    All those "Privacy" nuts have something to hide.

    I'll bet this 0x90 is learning to fly a plane while building bombs, writing free encryption programs, laundering money for the mob, selling drugs to toddlers, writing a violent video game, and *gasp* TRADING MP3S while on IRC with his fellow communist baby eaters!

    </humor>

    --
    "Live Free or Die." Don't like it? Then keep out of the USA
  7. Re:Clever, 0x90, but I'm changing my name to 0x120 by eddy · · Score: 3, Informative

    0x90 is the instruction code for 'NOP' (No OPeration) on IA32.

    In case anyone wondered. (I'm guessing... not)

    --
    Belief is the currency of delusion.
  8. Secret channels and practical uses? by Istealmymusic · · Score: 5, Insightful
    I've been using IIP for the past couple months now, but have yet to see a any interesting useful channels. /list only shows -s (non-secret) channels, I'm sure there has to be something more interesting out there... Anyone have any more information?

    On a related note, on IIP you can /mode #channel +a to make even the nicknames anonymous. Yours still shows up in your own client though, but others will see you as "Anonymous". Pretty useful, but otherwise theres not much activity on IIP. The technology is there, wheres the application?

    --
    "The lesson to be learned is not to take the comments on slashdot too literally." --Vinnie Falco, BearShare
    1. Re:Secret channels and practical uses? by MiDS · · Score: 3, Informative

      /mode +a will only work on !channels

      to create a !channel type: /join !!channel
      to join an existing !channel type: /join !channel

      Then set mode +a: /mode !channel +a

      Why? IRC weirdness.

  9. Invisible IRC by blake213 · · Score: 5, Funny

    It's great! When the boss comes around the corner, you don't have to minimize the window! Screenshots of Invisible IRC are in the link below.

    --
    mund freud.
  10. It worked Right away by Buzz_Litebeer · · Score: 4, Informative

    I find it a bit slower on the outset then regular IRC, but completely painless to run. Only a little more time to tell if it crashes because of the ./ effect. They also have a chanserve, nickserve named "Trent" if you are wondering, I havent tried to create a channel yet, but we shall see how it works.

    --
    If you don't vote, you don't matter, so don't waste your time telling me your opinion
  11. very intresting by Anonymous Coward · · Score: 3, Funny

    i just tried this, its very cool.

    although a bit laggy, and can get confusing on +a channels, where everyone is anonymous, heres an example

    sup?
    ello
    this is working?
    no
    you broke it!
    no ok
    wtf
    who are you?
    im anonymous
    nobody loves me :(
    I love you

    and with everyones host being anon.iip it must be hard to ban people, but its a very intresting idea

  12. Nickserv / Chanserv clone called Trent by MiDS · · Score: 3, Informative

    We have a nickserv/chanserv clone called Trent

    For help: /squery trent help
    To register your nick: /squery trent nickreg password
    To identify: /squery trent identify password

    See also the IIP manual

  13. Scalability? Resistance to Attacks? by billstewart · · Score: 3, Interesting
    How scalable is this system? The Codecon transcripts said you were just starting to work on the project at the time, and hadn't done much with it - but it's often hard to change scalability much past the beginning of a project. Unfortunately, the documentation on the web page is still pretty much bottom-up, not top-down, and having just heard about this today I haven't downloaded and played with it yet. Does every message on every channel go to every relay, or do relays only carry all channel creation announcements and then only carry user messages if they're on a path to somebody who wants to receive the channel? Are you doing flooding, or some kind of spanning tree, or some other way to minimize or maximize various traffic measures? If somebody's sending a big file, does it only go to one recipient, or are you multicasting it to a group, and does a recipient need to have acknowledged willingness to accept a file before you transfer it to him/her, or does it just go scream&leap its way across the network?

    Resistance to Deliberate Attacks is often strongly related to scalability. Sure, there are other ways to attack systems - find bugs in the code, or do social engineering attacks like posting Scientology documents and Metallica songs and ratting out any identifiable network operators. But attacks on the network's scalability can be really hard to fix, because they abuse things the system _is_ supposed to do rather than things it isn't. Have you looked at what parts of the network are easy to overload with data volume or small-message quantity or CPU-burning public-key crypto calculations or other critical resources?

    .

    .

    Oh, also, Invisibility is Cool, huh huh, huh huh, Invisible, yeah cool.

    --

    Bill Stewart
    New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
  14. Re:Is this such a good thing? by jdclucidly · · Score: 5, Interesting

    I worked on the project for some time so I have some accedotal evidence to support IIP.

    Some time ago, a very generous individual set up a #scientology channel for people who needed to find refuge from the cult and to critque it in a public forum. (Think censorship of xenu.net).

    Other times it's been an excelent forum for discussion of topics such as this ... or a place for critque of the American government's actions post 9/11. I don't know about you, but if I were an American and I sympathized with the Middle-East view of the western world, due to the Patriot Act, speaking my mind in a public forum where I can be traced is the last thing I would want to do.

  15. distributed irc? by ergonal · · Score: 5, Insightful
    IIP claims to be peer distributed, but does that mean there's no primary target for packet kiddies to inflict their hundreds of megabits of anger upon? If so, this indeed would be an ideal solution to the massive DDoS problems facing the big IRC networks lately (DALnet in particular).

    I think the primary focus of IRC development at the moment should be on inventing methods to stop the packet kiddies, otherwise IRC's lifetime looks pretty bleak. Maybe distributed IRCing is the way to go?

  16. Re:Scalability? Resistance to Attacks? by jdclucidly · · Score: 3, Insightful

    From the docs that I helped write:
    Chapter 10 of IIP Documenetation from CVS
    This is also why peer review is requested. I think most of your doubts will be put to rest by the docs though. Go read it! :)

  17. From 0x90 himself: by Istealmymusic · · Score: 4, Insightful

    so what happened?
    <ArdVark> where did all the /. people go?
    *** crappy has joined #anonymous
    <echelon> <nop> not really I turned off the server
    <echelon> <nop> there is still semi centralization
    *** hobbs has joined #anonymous
    <echelon> netsplit ;)
    *** iip has joined #anonymous
    *** anonymoose has joined #anonymous
    <ArdVark> netsplit? no
    *** echelon sets mode: -o Aprogas
    *** echelon sets mode: -o Chocolate

    --
    "The lesson to be learned is not to take the comments on slashdot too literally." --Vinnie Falco, BearShare
  18. Re:Clever, 0x90, but I'm changing my name to 0x120 by solferino · · Score: 3, Interesting

    0x90 is the instruction code for 'NOP' (No OPeration) on IA32.


    yes, and this extract from the interview seems to confirm
    that yours is the 'correct' decoding of the nick -

    [interviewer] Okay, let's talk about authentication of identity next.

    We know we are anonymous, but currently what measures are in place that can help ensure that I am really talking to nop or my other associates on IIP?

    [0x90 does not correct the name substitution in his reply]


    still like the 'gross' interpretation but...

  19. I've been poking around the similar idea by apankrat · · Score: 3, Interesting

    I've worked in VPN and P2P space for past few years and have been poking around the similar ideas for quite some time.

    The basic idea is very simple - you create trusted network of anonymous -proxies- and if node sees the traffic coming from the peer it's just unable to tell if it belongs the peer or some proxied node behind it. Hense the anonymity is built into the infrastructure.

    While looking at this, I got as far as putting together formal design document and protocol spec, and passed them around for the "peer review". The common problem everyone pointed out was the fact that this approach will not scale. It might be fine for IRC traffic, but it cannot and should not be applied to bulk data transfers. This is something InvisibleNet still has to realize.

    It's good that they have a momentum, which may (or may not) allow them to overcome principal problems of the architecure.

    --
    3.243F6A8885A308D313
    1. Re:I've been poking around the similar idea by delta407 · · Score: 3, Informative
      This is something InvisibleNet still has to realize.
      IIP2 is in the works which aims to include a completely different architecture. It will most likely be totally peer-to-peer (as in no distinction between clients, proxies, and servers; all nodes will share all roles) and incorporate a lexical routing system (addresses derived from channel or user names and routed accordingly).

      Initial data gathered suggests that it could scale well, preserving low latency and reasonably high throughput.

      Unfortunately, with this model, there are a few anonymity concerns -- the current issue being pondered is node discovery (how to keep an attacker from learning large numbers of nodes) and how to anonymously route messages back to the user. But don't worry, it's being worked on.
  20. CS-IIP protocol by apankrat · · Score: 3, Insightful

    IIP 'security protocol' seems to be pretty amamteurish piece of design. I might be excessively picky, but here are some points anyway:

    * Excessive use of pubkey cryptography (two DH exchanges ? How about regular Master/Derived key approach ?)

    * Home-brewed replay protection (see SSL/ESP for design ideas). In particular, having no explicit sequence ID in the packet may potentially allow for the replay or packet reuse.

    * No packet hashing to allow discarding malformed packets without decryption (see SSL/ESP for design ideas).

    * Unproven key rotation algorithm, which seems more of 'obscurity through security' thing than anything else.

    * No sign of declared on the main page Perfect Forward Secrecy (PFS) in the published specs.

    * Complete intolerance to minimal payload twitches (bitflips), ie heavy inter-packet dependency.

    The bottom line is the protocol is very rare and can use a lot of much needed peer review.

    The fine print is WHAT IS WRONG WITH SSL ?! SSL already has all the goodies (replay, rekey, authentication, etc) and it's stable and proven. It's not like IIP-CS allows to work over unreliable media or something, it's still layered over sessioned, reliable transport (TCP) ... So why to reinvent the wheel ?

    --
    3.243F6A8885A308D313
  21. A few more reasons this is not secure by Jim+McCoy · · Score: 4, Insightful
    The creators of IIP seem to have fallen for the seductive "if we keep adding cool things we read about in Applied Crypto it will magically become anonymous/secure" fallacy. There has been a lot of good research and test implementations done on real anonymous networking over the past few years, unfortunately the creators of IIP seem to have been unaware of all of it. I will not waste too much time ripping on this because it is a noble (albeit doomed) effort.


    One example of why this system does not offer the level of anonymity/security it is claiming is the mistaken belief that adding random "cover traffic" prevents traffic analysis. For some reason amateurs seem to think that if you add a few random bits of message traffic and delay a few messages between nodes then this "noise" will make observation and message correlation harder for an attacker. This is incorrect. The simple example that should help the /. crowd understand this is that an attacker can simply view the entire internal network as a black box and do statistical analysis on the inputs and outputs of this black box. There is only one way to prevent this sort of statistical analysis -- fixed bandwidth (or at least constant traffic) pipes. For a recent paper on this subject check out this paper that describes some of the techniques.


    There are several lists out there populated by people who actually know what they are doing when it comes to this stuff and simply lack the time/initiative to code up what they know. If the creators of IIP had simply asked a few pertinent questions they would have learned a lot and saved themselves a lot of frustration given that most of this will have to be completely re-coded if it is actually going to live up to the claims being made by this project.

    1. Re:A few more reasons this is not secure by Jim+McCoy · · Score: 4, Informative

      You should be subscribed to coderpunks (coderpunks@toad.com) to get access to a large group of top-notch crypto people. The next list that is a necessity is the nym-ip list (nymip-res-group@nymip.org), which discusses anonymity networks. You should also be checking out proceedings of the Information Hiding workshops, Privacy Enhancing Technologies workshops, and hunt down the other research work by presenters at these conferences.

  22. Re:A few more reasons this is secure - 0x90 by Jim+McCoy · · Score: 4, Insightful
    Not true. Take a quick scan of recent work by Albert-Laslo Berabasi et al. regarding the structure of the internet (there was a recent paper in the Proceedings of the NAS and he published a book on this titled Linked that every slashdot reader should check out) which shows that there are a few key nodes which handle a bulk of the traffic. You have to stop thinking about this network as if it was a random network. There will be well-known, stable nodes that will become preferred nodes and relays within the network -- an attacker will start by watching these nodes. If that is not enough the attacker will watch the major routers and relay points within the net using these well-known nodes as the hook to find additional nodes. It does not matter how widespread your nodes are for these sorts of attacks; in fact, wide geographic distribution of the nodes makes the traffic analysts job easier because this will force more of the packets through major interconnects (and into view of the observer) instead of keeping them localized.


    It does not matter that the traffic is encrypted in this case. An attacker is not necessarily interested in getting the contents of the messages, they will start off wanting to know who is talking to who. For this it is not necessary to break the encryption, you treat the whole network as a black box and apply some signal processing tricks to get the conversation flows. [Sorry if all of this sounds negative, but you have decided to tackle a very hard problem that lots of very smart people have been thinking and tinkering on for more than a decade...]